Security and Audit Field Manual: Microsoft Dynamics 365 for Finance & Operations, Spring 2019 release
For many companies, Microsoft Dynamics 365 for Finance and Operations (D365FO) is the core of their financial management system, and protecting against fraud, misstatements, and errors is a critical component of running D365FO. Sometimes though, it’s hard to know where to start. This is a book about D365FO security written to help users, administrators, and auditors better understand how to plan, implement, and audit D365FO security for their financial operations. Security books tend to be heavy on theory or application, rarely including both. This Security and Auditing Field Manual is designed to help users understand sound control principles and how to apply them in D365FO.
Develop and Implement Least Privilege Security
We are all concerned with security – in every aspect of our lives. We are especially concerned with security and control when it comes to our business processes. In this E-book, we will walk through the necessary steps to take a least privilege methodology to secure your Microsoft Dynamics 365 for Finance and Operations (D365FO) environment. The least privilege methodology is the process of reducing a user’s access, so they are only allowed to perform the tasks necessary within the application. This is important for several reasons:
- Environment Risk – if a user has more access than needed, they may intentionally or inadvertently perform actions that could put your company at risk.
- User Licensing – since licensing is tied to user access, ensuring least privilege access is followed could save your company money on licensing costs.
- Segregation of Duties – following the same idea as environment risk, if a user has more access than needed, they may have unnecessary segregation of duties violations that go unaddressed.
Get the E-book here: Develop and Implement Least Privilege Security for D365FO
Fastpath vs. Dynamics AX/D365FO Segregation Of Duty Analysis Comparison
There are many questions about the built-in Segregation of Duties functionality within Dynamics AX and D365FO, how it works, and any short comings that it has? To help answer those questions, I created a white paper that compares the native SoD functionality to the functionality that the Fastpath tool offers surrounding this area.
Get the E-book here: Fastpath vs. Dynamics AX/D365FO Segregation Of Duty Analysis Comparison
Open Source Projects
- This project is designed to convert the XML output a user gets from exporting security from the user interface in D365FO to the XML needed to create security in the AOT.
- This project will process the output of a task recording from either Dynamics AX 2012 or Dynamics 365 for Finance and Operations and show the menu items consumed during the recording.
Building roles and implementing strong security in Dynamics AX/365FO can be a daunting task, so Fastpath created a tool to assist in designing security roles. Security design is an important part of any security setup. Roles in Dynamics AX/365FO were designed for ease of access, not segregation of duties. You can use this worksheet to recognize where you have conflicts, and build better roles to fit your company’s needs.
Other Resources / Blogs
|Andre Arnaud de Calavon||https://dynamicspedia.com/|
|Joris de Gruyter||https://daxmusings.codecrib.com/|
|Microsoft D365FO Community||https://community.dynamics.com/365/financeandoperations|
|365 Community Online||https://365community.online/|
|Dynamics Communities Forum||https://www.d365ug.com/home|